Job Specifications
Role: Infosec Security Architect
Location: Reston, VA (Hybrid)
Duration: Long term
Contract: C2C / W2 / Fulltime
Direct Client
Job Description:
Hiring for a Senior Information Security Architect position primarily focusing on AWS. This position requires deep expertise in Information Security principles including Business Security Architecture, Threat Modelling, Data Security (data encryption, masking, tokenization, data access controls), AWS Cloud and Systems architecture. This individual must be able to architect and ensure the security and compliance of the cloud environments based on enterprise cloud security policies, standards, procedures and industry best practices and frameworks (NIST, OWASP)
• This is a potential contract to hire (not necessarily but need the option) after 6 months.
• Candidate is expected to come to Reston office three times a week
• Self-starter and Senior Architect who can lead the AWS Security architecture program in multiple projects simultaneously by collaborating with numerous stakeholders (Product owners, Enterprise Architect)
Must Have
1 Public Cloud: AWS Experience
Deep Expertise and proven Track record in AWS Architecture and AWS Services (Compute, IAM, RDS, Resource Policies, Network, Messaging, Data Storage, CI/CD, AI/ML, ETL, Serverless, ECS/EKS). Experience with AWS security pillars, best practices and well designed architecture. Experience in AI/ML is preferable.
2 Information Security Architecture
Key experience: Application security, Threat Modelling, API Security, DevSecOps, Pipeline security, Infrastructure security, AuthN/Z, Encryption, Key Management, Data discovery and encryption, SIEM, CSPM, CWPP, Access Controls, Container Security
• Industry security standards and frameworks (OWASP, NIST CIS, FED Ramp, ISO, SOX etc.).
• Experience designing Architectures based on Security Standards and threat model the designs to identify issues and design mitigating controls.
3. Systems Architecture
• Key experience: System Design, API Driven architecture, Open Standards, stateless, Resiliency, High Availability, System and SaaS Integrations.
Nice to Have
1. AWS advanced Certification (Professional, Specialty), Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) or equivalent
About the Company
At CBC, we are committed to ensuring that we're always at the forefront of capability creation. We collaborate closely with our clients, partners, and stakeholders, acting as strategic allies in their digital transformation journey. By leveraging innovative technologies and embracing disruption, we drive progress and anticipate future technology needs.
Digital Transformation || Supply Chain Solutions || Data Solutions || Cloud Solutions || Supply Chain Consulting || Professional Services ||
Know more